Alternatives and similar repositories for ARDvark

Users that are interested in ARDvark are comparing it to the libraries listed below

• cedowens / Persistent-Swift
  A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…
  ☆32Updated 4 years ago
• mattreduce / eddie
  Eddie Vetter - triage macOS applications for security research
  ☆16Updated 4 years ago
• WithSecureLabs / macOSTriageCollectionScript
  A triage data collection script for macOS
  ☆28Updated 4 years ago
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆16Updated last year
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• antman1p / PrintTCCdb
  JXA script for Mythic that prints the TCC.db
  ☆15Updated 4 years ago
• MythicAgents / typhon
  Payload designed for targeting Jamf enrolled devices.
  ☆38Updated 2 years ago
• its-a-feature / macos-popups
  Catalog Red Team techniques that cause popups in various macOS versions
  ☆14Updated 7 months ago
• serrastusbear / NewDomainSearch
  Script to pull newly-registered domains and check for similarity against a provided word list.
  ☆13Updated 4 years ago
• its-a-feature / macOSCameraCapture
  Simple CLI utility to save off an image from every webcam hooked into a mac
  ☆14Updated 4 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• ShadowHatesYou / whori.sh
  Zone transfers for rwhois
  ☆20Updated 6 years ago
• deeso / fleet-deployment
  ☆15Updated 5 years ago
• cedowens / C2_Cradle
  Tool to download, install, and run macOS capable command & control servers (i.e., C2s with macOS payloads/clients) as docker containers f…
  ☆19Updated 4 years ago
• cedowens / Mythic-Macro-Generator
  Python3 script to generate a macro to launch a Mythic payload. Author: Cedric Owens
  ☆47Updated 4 years ago
• fastlorenzo / redelk-kibana-app
  Kibana app for RedELK
  ☆17Updated 2 years ago
• dfirlabs / ntfs-specimens
  NTFS file system specimens
  ☆13Updated last year
• 0xdeadbeefJERKY / mythic-deploy
  Automated deployment and configuration of a Mythic server using Terraform and Ansible
  ☆9Updated 2 years ago
• randomaccess3 / block-parser
  Parser for Windows PowerShell script block logs
  ☆13Updated 5 months ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆17Updated 4 years ago
• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• AtropineTears / TheMacHardeningScripts
  Scripts to secure and harden Mac OS X
  ☆31Updated 3 years ago
• brokensound77 / toruk
  Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data
  ☆13Updated 5 years ago
• WithSecureLabs / FLAIR
  F-Secure Lightweight Acqusition for Incident Response (FLAIR)
  ☆16Updated 3 years ago
• refractionPOINT / limacharlie
  Old home of LimaCharlie, open source EDR
  ☆31Updated last year
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 5 years ago
• TmmmmmR / WinEnum
  Toolkit to detected abnormal activities on a Windows machine.
  ☆11Updated 9 years ago
• cedowens / JXA-Runner
  Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.
  ☆24Updated 4 years ago
• tokesr / usb_investigator
  ☆9Updated 5 years ago
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago